SOC Analyst
Clark, Pampanga
About Us
Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for individuals who don’t view their weekdays spent at ‘a job’ but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you’re attracted to a work hard, play hard environment and seek the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!
Position Overview
With a growing client base, Thrive is continuing to build out its security team. We are looking to hire a SOC Analyst 1 to take a role within our Security Operation Center assist with the continuously monitor and improve our customers' security posture while preventing, detecting, analyzing, and responding to cybersecurity incidents utilizing technology and well-defined processes and procedures. The ideal candidate will have a passion for information security and will value what a properly managed Security monitoring solution can bring to our client needs.
Primary Responsibilities
- Perform security event monitoring using Security Information and Event Management (SIEM) from multiple sources, including but not limited to, events from network and host-based intrusion detection/prevention systems, network infrastructure logs, systems logs, applications, and databases.
- Investigate intrusion attempts, differentiate false positives from true intrusion attempts, and perform analysis of exploits.
- Proactive monitoring and response of known and/or emerging threats.
- Carry out Thrive’s information security strategy both internally and externally for 400+ clients in the northeast.
- Analyze data from our SOC and SIEM and determine if further analysis is needed.
- Work within Thrive’s security standards and best practices and recommend future enhancements.
- Manage our clients’ security awareness training to help their end users be as safe as possible.
- Analyze vulnerability scans and determine remediation steps
- Stay abreast of security events and techniques to keep our clients protected.
- Build awareness through training and education.
Qualifications •
- Has knowledge of the following systems and technologies:
- SIEM (Security Information and Event Management)
- TCP/IP, computer networking, routing, and switching
- IDS/IPS, penetration and vulnerability testing
- Firewall and intrusion detection/prevention protocols
- Windows, UNIX, and Linux operating systems o Network protocols and packet analysis tools
- EDR, Anti-virus, and anti-malware
- Content filtering
- Email and web gateway.
- Understanding of cybersecurity threats, and experience with incident response standards and procedures.
- Demonstrates comprehension of good security practices
- Professional experience in a system administration role supporting multiple platforms and applications
- Ability to communicate network security issues to peers and management
Qualifications
- Ability to analyze a large amount of data from various sources and use this information to solve complex problems and make good decisions. Must be able to work effectively in a team environment and collaborate within the team and other stakeholders.
- Computer Networking & Security
- Vulnerability Discovery and Analysis
- Operating System Internals
- Familiarity with TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.).
- Excellent Written and Verbal Communication Skills Preferred Skills:
- Knowledge of common Windows and Linux/Unix system calls and APIs
- Understand Anti-Virus
- Knowledge of programming languages.
- Knowledge of internal file structures for file formats commonly associated with malware (e.g., OLE, RTF, PDF, EXE, etc.)
NOTE: Only candidates located in the Philippines and willing to work out of the Clark office should apply.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Cloud DNS EDR Exploits Firewalls IDS Incident response Intrusion detection IPS Linux Malware Monitoring Network security Security strategy SIEM SMTP SOC Strategy TCP/IP UNIX Vulnerability scans Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Threat intelligence-related jobs
- Open DoD-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open TS/SCI-related jobs